Shared Stock Linker

Privacy Policy

Last updated: 2026-05-18

This Privacy Policy explains how Shared Stock Linker handles merchant and store-related data when a merchant installs or uses the app.

1. Who we are

Shared Stock Linker is provided by Garoel ("we", "us", "our").

Contact name: Marcelo
Email: Marbenjs@gmail.com
Business address: 6 Liberty Square # 2220, Boston, MA 02109, United States

2. What this app does

Shared Stock Linker helps Shopify merchants keep inventory synchronized across linked product variants that represent the same physical stock.

  • create and manage stock groups
  • synchronize available inventory across linked variants
  • process order, refund, and inventory events needed to keep shared stock accurate
  • maintain logs needed to diagnose drift and reconciliation events

3. Personal data we process

We process only the minimum merchant and customer-related data needed to provide the app's core inventory synchronization functionality.

Depending on how the app is used, this may include:

  • Shopify shop domain and app installation/session data
  • order and refund event data relevant to inventory synchronization
  • product, variant, inventory item, and location identifiers
  • operational logs related to stock synchronization and webhook processing

The app is not intended to use customer name, postal address, email address, or phone number as part of its core functionality unless a future feature genuinely requires it and the access is separately justified.

4. Why we process data

We process data for the following purposes:

  • authenticate merchants and maintain the app installation
  • synchronize inventory across linked variants
  • process order and refund events that affect shared stock
  • detect inventory drift and support reconciliation
  • maintain audit and diagnostic logs for reliability and support
  • secure, maintain, and improve the app

We do not use protected customer data for advertising, cross-merchant profiling, or unrelated marketing.

5. Legal / merchant-facing basis for processing

We process data as necessary to provide the services requested by the merchant through the app. Where required by applicable law, merchants remain responsible for ensuring they have an appropriate legal basis to use apps and share relevant store data with app providers.

6. Data minimization

We aim to process the minimum data required to provide the app's functionality.

  • requesting only the Shopify scopes needed for the inventory-sync workflow
  • focusing on inventory, order, refund, and installation data relevant to stock synchronization
  • avoiding directly identifying customer fields unless separately required and approved

7. Retention

We retain data only for as long as needed to operate the app, troubleshoot issues, meet legal obligations, and enforce our agreements.

  • installation and session data: retained while the merchant actively uses the app
  • stock groups, snapshots, and synchronization metadata: retained while needed to provide the service
  • diagnostic logs and webhook receipts: retained only as long as reasonably needed for reliability, security, debugging, and legal compliance

8. Security

We use reasonable administrative, technical, and organizational measures to protect data.

  • encrypted transport such as HTTPS/TLS where the app is deployed
  • access controls for app infrastructure and databases
  • limiting production access to authorized operators
  • minimizing stored data where possible
  • logging and operational review for errors and suspicious behavior

9. Sharing

We do not sell personal data collected through the app.

We may share data only as needed with:

  • infrastructure, hosting, database, logging, or monitoring providers that help operate the app
  • professional advisers or authorities where legally required
  • a successor entity in connection with a merger, acquisition, or asset sale, subject to applicable law

10. International transfers

If data is processed outside the merchant's or customer's jurisdiction, we will take reasonable steps to implement appropriate safeguards required by applicable law.

11. Merchant responsibilities

Merchants remain responsible for their own compliance obligations toward their customers, including providing required notices and honoring data subject rights where applicable.

12. Customer and merchant rights

Depending on applicable law, individuals may have rights relating to access, correction, deletion, portability, restriction, or objection.

Merchants or individuals may contact us at Marbenjs@gmail.comregarding privacy requests. We may require verification before acting on a request.

13. Changes

We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date and, where appropriate, provide additional notice.